The GitHub Actions job "Tests (AMD)" on airflow.git/samba-gcs-to-smb-destination-path-containment has failed. Run started by GitHub user potiuk (triggered by potiuk).
Head commit for run: 637871e1d5cc50cc75ac7737851a4658fb37e8d0 / Jarek Potiuk <[email protected]> Validate GCSToSambaOperator destination path stays within destination_path GCS object names are read from the source bucket and may contain ".." segments. GCSToSambaOperator._resolve_destination_path joined the object name onto the configured destination_path without normalisation, so a crafted object name could resolve an SMB write target outside the intended directory. Normalise the resolved path and refuse to write when it falls outside destination_path. Generated-by: Claude Opus 4.8 (1M context) Report URL: https://github.com/apache/airflow/actions/runs/26772184761 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
